How to Prevent Social Engineering and Phishing Attacks

How to Prevent Social Engineering and Phishing Attacks-: As we know that technology makes our life simple and comfortable but every good things always have some drawbacks.we can see high growth especially in the field of Information Technology and impact of IT in our daily life from online shopping to Internet Banking everything is possible with a single click and touch on our smart phone. one thing which we can not ignore is growth in Information Technology also resulted growth in cyber crime.

it is very uncertain that, How many of us aware of cyber crime and method used by a hacker? In another way, we can say that Information Technology and cyber crime are directly proportional to each other. Information Technology growth also in results Growth in Cyber Crime to know more about Phishing attacks and its prevention read my Previous post How to Prevent Against Phishing Attacksin this post we will learn a various aspect of Social Engineering and Phishing Attack and methods to prevent yourself from this types of attacks.

How to Prevent Social Engineering and Phishing Attacks-:

”Social engineering is an attack vector that relies heavily on human interaction and often involves tricking people into breaking normal security procedures.”

In our daily life, we heard so many cases and read in the newspaper like Hacking of banking password, credit card detail, money withdraw from person’s bank account.It is very uncertain that how many percentages of people who are using the Internet are aware of the cyber crime or in another way we can say social engineering.

Social Engineering is defined as” Method and technique used by a cybercriminal to achieve their target”.

Nowadays Hacker or social engineer got power because of high growth in information technology. social engineer using various method t hack personal detail.

For Example

suppose you have a bank account in www.xyzbank.com A Social Engineer ( Hacker ) can send you a mail like” due to some technical problem www.xyzbank.com has lost its data, click on below link to provide data so we can save your all account detail.

Link www.xyzbank.com/application.php

if you fill up this application form and you’re are not aware of that is mail is not coming from www.xyzbank.com then the social engineer can get you all bank information just a click away.

The Same way a Social Engineer send you a mail like this” You have won the lottery of Rs. 5 lakh, please fill the application form below so we can deposit lottery amount into your account.” even though you have not purchased any such type lottery.

A hacker might be sent a Malware to your system during your online activity and this malware sent your all personal detail to the hacker.

Today’s Social Engineers are very smart rather than doing a small thing as above they might be hacking your web browser, if your web browser got hacked by a Social Engineer then all information browsed by you in your web browser goes to the hacker.

Let’s take an overview of some common method of social Engineering

1. Sniffing 2.Spoofing

1. SniffingSniffing is a process by which Social Engineer (hacker) try to find user password. There are mainly three type of Sniffing

A.Password Showing-: Password showing is the way by which a user disclosed his or her password to a hacker.

B.Password Guessing-: Password guessing involves to guess the password by a number of attempts.

C.Password Capturing-: Password Capturing involve to have the user password with the use of some Malware program.

2.Spoofing-:Spoofing a process by which a social engineer may alter e-mail header to make it appear that a request for info originated from another address this process known as spoofing.

9.Open website directly typing in the address bar of your web browser never open a website by clicking on any link.

10. Do not reply any such type of e-mail that is asking for your personal information.

11. Before providing your personal information to any website always check Privacy Policy of that website.

12.Always delete or limit cookies if you are using a public computer if you are using FireFox after browsing press Shift+Ctrl+Del and this works with most of the all web browser to clear history and if you are using Internet Explorer then you can do same thing Tool—->Internet option to clear your private data.

Conclusions–: Using the power of Information technology blindly may harm you one day because every good thing also has some drawback side, as per my point of view every internet user must have basic awareness about Cyber Security. Phishing Scams are one of the major cyber crime which a social engineer always prefer because it is directly related to money.As far as India is concerned where the major population still not m the ch more aware about Cyber Security but Indian Government and Indian Banks are doing a good job to educate people about Cyber Security.

Hi, I am Amar Patel Founder , Author and Administrator of TECHFLOYD Professionally a Mechanical Design Engineer with Passion towards WordPress, Coding, Web Apps, Social Media.
I loves to write about Tech Tips , How to Guide on daily useful Information Technologies which helps us to increase our Productivity in Daily Life.
You can Contact me
admin@techfloyd.com

4 Comments

Whenever u download some software and it does nothing, become suspicious that something wrong happened.

Even some crackers (plz dont use hackers) replicate the webpage exactly the way of reputed bank, but person entering the data may not know that cracker has modified entries in proxy and password and username comes to the cracker instead of going to the bank server.

Well, i am doing LL.M. in CRIMINAL LAW. Nice to see ur effort, to aware people about cyber crimes. However, i am not sure why u used the word “social engineer”.

Secondly, Palash is very right to point out that one needs to distinguish between CRACKER and HACKER. Let me make it more clear. HACKER is some who improves a program to enchance its ability ( which is nearly not illegal most often). CRACKER is one who cracks or damages a program.( which is always illegal).

CRACKERS are to be criticized. Cyber Security experts like ANKIT FADIA are the HACKERS not crackers.